Apple Has Addressed A Zero-Day Vulnerability Which Is Being Actively Exploited In The Wild

• Post author:Keshav R
• Post published:February 8, 2022
• Post category:Endpoint Management/Endpoint Security/Endpoint Security and Management/Featured Articles/Security Research and Intelligence/Vulnerability Management
• Reading time:2 mins read

This year, Apple released security updates for their third zero-day vulnerability. The affected software processes maliciously crafted web content, leading…

Continue ReadingApple Has Addressed A Zero-Day Vulnerability Which Is Being Actively Exploited In The Wild

Log4Shell-Critical Remote Code Execution Vulnerability in H2database Console

• Post author:Keshav R
• Post published:January 10, 2022
• Post category:Endpoint Security and Management/Featured Articles/Security Research and Intelligence/Vulnerability Management
• Reading time:5 mins read

JFrog has recently disclosed a remote code execution vulnerability on H2 Database consoles. This is based on a Java Naming…

Continue ReadingLog4Shell-Critical Remote Code Execution Vulnerability in H2database Console

Microsoft Open Management Infrastructure (OMI) Critical Vulnerabilities Under Active Exploitation – OMIGOD

• Post author:Shakeel Bhat
• Post published:September 21, 2021
• Post category:Endpoint Security and Management/Security Research and Intelligence
• Reading time:6 mins read

Microsoft Open Management Infrastructure (OMI) is an open-source project which allows users to manage configurations across remote and local environments…

Continue ReadingMicrosoft Open Management Infrastructure (OMI) Critical Vulnerabilities Under Active Exploitation – OMIGOD

Zoho Patches Critical Zero-day Flaw in its ADSelfService plus Exploited in The Wild

• Post author:Vijay Chachadi
• Post published:September 9, 2021
• Post category:Endpoint Management/Featured Articles/IT Asset Management/Patch Management/Security Research and Intelligence
• Reading time:2 mins read

 Zoho Patches Critical Zero-day Flaw in ADSelfService to patch a remote code execution (RCE) vulnerability existing in Zoho ADSelfService plus.…

Continue ReadingZoho Patches Critical Zero-day Flaw in its ADSelfService plus Exploited in The Wild

Sophos UTM Creating a ‘Big’ Bounty with Remote Code Execution Flaw

• Post author:Vijay Chachadi
• Post published:August 25, 2021
• Post category:Security Research and Intelligence/Technology and Trends/Vulnerability Management
• Reading time:4 mins read

A critical and high severity remote code execution vulnerability with CVSS 3.x severity base score 9.8 is discovered in Sophos…

Continue ReadingSophos UTM Creating a ‘Big’ Bounty with Remote Code Execution Flaw

WinRM servers are the latest preys for the Wormable Windows HTTP vulnerability

• Post author:Ashwitha Kallalike
• Post published:May 24, 2021
• Post category:Endpoint Security and Management/Patch Management/Security Research and Intelligence
• Reading time:5 mins read

Microsoft recently patched a critical remote code execution vulnerability in the HTTP Protocol Stack (http. sys), used by the Windows…

Continue ReadingWinRM servers are the latest preys for the Wormable Windows HTTP vulnerability

Second Zero-Day Exploit for Google Chrome in the Same Week

• Post author:Ashwitha Kallalike
• Post published:April 16, 2021
• Post category:Patch Management
• Reading time:4 mins read

Google Chrome users who were relieved by patching the recent zero-day advisory are taken aback by the news of another…

Continue ReadingSecond Zero-Day Exploit for Google Chrome in the Same Week

QNAP Patches Critical Vulnerabilities in NAS Appliances

• Post author:Peter Walker
• Post published:February 18, 2021
• Post category:Endpoint Security and Management/Security Research and Intelligence
• Reading time:3 mins read

QNAP addresses multiple vulnerabilities in its product line affecting Surveillance Station and Photo Station applications. These vulnerable software applications are…

Continue ReadingQNAP Patches Critical Vulnerabilities in NAS Appliances

Critical Zero-Day in HPE Systems Insight Manager Revealed

• Post author:Nitish B
• Post published:December 17, 2020
• Post category:Endpoint Security and Management/Security Research and Intelligence/Vulnerability Management
• Reading time:2 mins read

Hewlett Packard Enterprise recently revealed a security flaw in its Systems Insight Manager software. This zero-day bug resides in the…

Continue ReadingCritical Zero-Day in HPE Systems Insight Manager Revealed

Zoom Zero-Day Critical Vulnerability Allows RCE

• Post author:Kumarswamy S
• Post published:July 13, 2020
• Post category:Endpoint Security and Management/SecPod News Updates/Security Research and Intelligence
• Reading time:2 mins read

A critical zero-day vulnerability has been found in Zoom - A video conferencing software, for Windows 7 or below. The…

Continue ReadingZoom Zero-Day Critical Vulnerability Allows RCE